Hi,
I've tried to enable more portions of the mod_ssl code. Here, a
summary of the patch :
Patch 1 :
1. keepalive connections for SSL seem to work now. Eliminated the
ssl_hook_CloseConnection() from ssl_io_filter_Input, and perform the
operation during connection pool cleanup. I'm also calling the
ssl_hook_CloseConnection if there's a timeout during apr_bucket_read. This
is just for precaution, and can be eliminated later.
2. Take over the "possible security fix" that Geoff Thorpe had posted
sometime back on the modssl-users mailing list (I can provide more details
if required)..
3. Enabled more hooks - ssl_hook_translate_name, ssl_hook_create_request,
and others..
Patch 2 :
4. Change ssl_hook_process_connection to accept a conn_rec structure - just
trying to cleanup - in tune with other portions of the code - it's intutive
to pass a conn_rec to a process_connection hook.. The goal is to call the
ssl_hook_processconnection from ap_hook_processconnection, rather than call
it manually - as it's being done today..
Pl. let me know if you have any comments / suggestions.
Thanks
-Madhu
<<patch1.txt>>
<<patch2.txt>>